Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 25, 2024, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
21 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス
CVE-2024-53092 2024-12-25 11:18 2024-11-6 Show GitHub Exploit DB Packet Storm
22 7 重要
Local
Linux Linux Kernel Linux の Linux Kernel における Time-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New CWE-367
CWE-416
CVE-2021-47280 2024-12-25 11:14 2021-06-8 Show GitHub Exploit DB Packet Storm
23 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス
CVE-2021-47269 2024-12-25 11:12 2021-06-9 Show GitHub Exploit DB Packet Storm
24 - - トレンドマイクロ Deep Security Agent トレンドマイクロ製 Deep Security Agent(Windows 版)におけるファイル検索パスの制御不備の脆弱性 New CWE-427
制御されていない検索パスの要素
CVE-2024-55955 2024-12-25 11:00 2024-12-24 Show GitHub Exploit DB Packet Storm
25 5.3 警告
Network
レッドハット
日立
uCosminexus Application Server Light
uCosminexus Application Server-R
uCosminexus Client for ATM
uCosminexus Developer Professional
プログラミ…
Xerces JBoss における入力確認に関する脆弱性 Update CWE-20
不適切な入力確認
CVE-2020-14338 2024-12-24 17:09 2020-10-13 Show GitHub Exploit DB Packet Storm
26 5.3 警告
Network
オラクル
日立
uCosminexus Application Server Light
uCosminexus Application Server-R
uCosminexus Client for ATM
uCosminexus Developer Professional
プログラミ…
Oracle Java SE および Java SE Embedded における JAXP に関する脆弱性 Update CWE-noinfo
情報不足
CVE-2020-14621 2024-12-24 17:05 2020-07-14 Show GitHub Exploit DB Packet Storm
27 7.4 重要
Network
オラクル
NetApp
日立
uCosminexus Application Server Light
uCosminexus Application Server-R
uCosminexus Client for ATM
uCosminexus Developer Professional
E-Ser…
Oracle Java SE および Java SE Embedded における 2D に関する脆弱性 Update CWE-noinfo
情報不足
CVE-2020-14593 2024-12-24 16:58 2020-07-14 Show GitHub Exploit DB Packet Storm
28 8.3 重要
Network
オラクル
NetApp
日立
uCosminexus Application Server Light
uCosminexus Application Server-R
uCosminexus Client for ATM
uCosminexus Developer Professional
E-Ser…
Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 Update CWE-noinfo
情報不足
CVE-2020-14583 2024-12-24 16:54 2020-07-14 Show GitHub Exploit DB Packet Storm
29 3.7
Network
オラクル
NetApp
日立
uCosminexus Application Server Light
uCosminexus Application Server-R
uCosminexus Client for ATM
uCosminexus Developer Professional
E-Ser…
Oracle Java SE および Java SE Embedded における 2D に関する脆弱性 Update CWE-noinfo
情報不足
CVE-2020-14581 2024-12-24 16:38 2020-07-14 Show GitHub Exploit DB Packet Storm
30 5.5 警告
Local
Linux
Debian
Debian GNU/Linux
Linux Kernel
Linux の Linux Kernel 等複数ベンダの製品における有効期限後のメモリの解放の欠如に関する脆弱性 New CWE-401
有効期限後のメモリの解放の欠如
CVE-2024-27077 2024-12-24 16:24 2024-02-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 25, 2024, 4:06 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 - - - Gogs is an open source self-hosted Git service. A malicious user is able to write a file to an arbitrary path on the server to gain SSH access to the server. The vulnerability is fixed in 0.13.1. New - CVE-2024-55947 2024-12-25 01:15 2024-12-24 Show GitHub Exploit DB Packet Storm
2 - - - A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2 up to 20241222. It has been classified as critical. This affects an unknown part of the file ../mtd/Co… New - CVE-2024-12897 2024-12-25 01:15 2024-12-23 Show GitHub Exploit DB Packet Storm
3 - - - A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2 up to 20241222 and classified as problematic. Affected by this issue is some unknown functionality of … New - CVE-2024-12896 2024-12-25 01:15 2024-12-23 Show GitHub Exploit DB Packet Storm
4 - - - A reflected Cross-Site Scripting vulnerability in the standard documentation upload functionality in Portabilis i-Educar 2.9 allows attacker to craft malicious urls with arbitrary javascript in the '… Update - CVE-2024-55239 2024-12-25 00:15 2024-12-19 Show GitHub Exploit DB Packet Storm
5 - - - In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix off by one in uof_get_name() This is called from uof_get_name_420xx() where "num_objs" is the ARRAY_S… New - CVE-2024-53163 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
6 - - - In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_4xxx - fix off by one in uof_get_name() The fw_objs[] array has "num_objs" elements so the > needs to be >= to pr… New - CVE-2024-53162 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
7 - - - In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer overflow The 64-bit argument for the "get DIMM info" SMC call consists of mem_ctrl_idx left… New - CVE-2024-53161 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
8 - - - In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct6775-core) Fix overflows seen when writing limit attributes DIV_ROUND_CLOSEST() after kstrtoul() results in an overflo… New - CVE-2024-53159 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
9 - - - In the Linux kernel, the following vulnerability has been resolved: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() This loop is supposed to break if the frequency returned from cl… New - CVE-2024-53158 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
10 - - - In the Linux kernel, the following vulnerability has been resolved: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu KCSAN reports a data race when access the krcp->monitor_work.timer.exp… New - CVE-2024-53160 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm